Lucene search

K
cve[email protected]CVE-2024-35570
HistoryMay 23, 2024 - 7:16 p.m.

CVE-2024-35570

2024-05-2319:16:01
web.nvd.nist.gov
47
arbitrary code execution
file upload
component vulnerability
jsp file
cve-2024-35570

8.1 High

AI Score

Confidence

Low

0 Low

EPSS

Percentile

0.0%

An arbitrary file upload vulnerability in the component \controller\ImageUploadController.class of inxedu v2.0.6 allows attackers to execute arbitrary code via uploading a crafted jsp file.

8.1 High

AI Score

Confidence

Low

0 Low

EPSS

Percentile

0.0%

Related for CVE-2024-35570